Transcription

2 BEGINNERS GUIDE TO SSL CERTIFICATES Introduction Whether you are an individual or a company, you should approach online security in the same way that you would approach physical security for your home or business. Not only does it make you feel safer but it also protects people who visit your home, place of business, or web site. It is important to understand the potential risks and then make sure you are fully protected against them. In the fast- paced world of technology, it is not always easy to stay abreast of the latest advancements. For this reason it is wise to partner with a reputable Internet security company. This guide will de- mystify the technology involved and give you the information you require to make the best decision when considering your online security options. For a glossary of terms, please see Tech Talk Made Simple at the end of this document. What is an SSL Certificate? An SSL Certificate is a digital computer file (or small piece of code) that has two specific functions: 1. Authentication and Verification: The SSL Certificate has information about the authenticity of certain details regarding the identity of a person, business or web site, which it will display to visitors on your web site when they click on the browser's padlock symbol or trust mark (e.g., the VeriSign (Norton) seal). The vetting criterion used to determine if an SSL Certificate should be issued is most stringent with an Extended Validation (EV) SSL Certificate; making it the most trusted SSL Certificate available. Data Encryption: The SSL Certificate also enables encryption, which means that the sensitive information exchanged via the web site cannot be intercepted and read by anyone other than the intended recipient. 2. In the same way that a physical identity document or passport may only be issued by the relevant country s government officials, an SSL Certificate is most reliable when issued by a trusted Certificate Authority (CA). The CA has to follow very strict rules and policies about who may or may not receive an SSL Certificate. So, when you have a valid SSL Certificate from a trusted CA, there is a higher degree of trust. WHAT IS SSL? SSL stands for Secure Socket Layer. It is a technology that establishes a secure session link between the visitor s web browser and your web site so that all communications transmitted through this link are encrypted and are, therefore, secure. SSL is also used for transmitting secure , secure files, and other forms of information.

3 HOW DOES SSL ENCRYPTION WORK? In the same way that you lock and unlock doors and other things using a key, encryption makes use of keys to lock and unlock your information. Unless you have the right key required, you will not be able to open the information. Each SSL session consists of two keys: 1. The public key is used to encrypt (jumble up) the information. 2. The private key is used to decrypt (un- jumble) the information and restore it to its original format so that it can be read. The Process: Every SSL Certificate is issued for a specific server and web site domain (web site address) for a CA- verified entity. When a person uses their browser to navigate to the address of a web site with an SSL Certificate, an SSL handshake (greeting) occurs between the browser and server. Information is requested from the server which is then made visible to the person in their browser. You will notice changes in your browser (for more details, please see How Do I Know That a Site Has a Valid SSL Certificate? below). If you click on the trust mark, you will see additional information such as the validity period of the SSL Certificate, the domain secured, the type of SSL Certificate, and the issuing CA. A secure link is established for that session, with a unique session key, and secure communications can begin. HOW DO I KNOW THAT A SITE HAS A VALID SSL CERTIFICATE? 1. A standard web site without SSL security displays before the web site address in the browser address bar. This moniker stands for Hypertext Transfer Protocol, and is the conventional way to transmit information over the Internet. However, a web site that is secured with a SSL Certificate will display https:// before the address. This stands for Secure HTTP.

4 2. You will also see a padlock symbol on the top or bottom of the Internet browser (depending on which browser you are using). 3. Often, you will also notice a trust mark displayed on the web site. Symantec customers use the Symantec seal trust mark on their web sites. When you click on the VeriSign (Norton) seal or the padlock symbol on the page, it will display details of the relevant certificate with all of the company information as verified and authenticated by the CA.

5 4. By clicking the closed padlock in the browser window, or certain SSL trust marks (such as the VeriSign (Norton) seal), the web site visitor sees the authenticated organization name. In high- security browsers, the authenticated organization name is prominently displayed and the address bar turns green when an Extended Validation (EV) SSL Certificate is detected. If the information does not match, or the certificate has expired, the browser displays an error message or warning.

6 WHERE WOULD I USE AN SSL CERTIFICATE? The short answer to this question is that you would use an SSL Certificate anywhere that you wish to transmit information securely and show customers that you are doing just that. Here are some examples: ü Securing communication between your web site and your customer s Internet browser. ü Securing internal communications on your corporate intranet. ü Securing communications sent to and from your network (or private address). ü Securing information between servers (both internal and external). ü Securing information sent and received via mobile devices. DIFFERENT TYPES OF SSL CERTIFICATES There are a number of different SSL Certificates on the market today. 1. The first type of SSL Certificate is a self- signed certificate. As the name implies, this is a certificate that is generated for internal purposes and is not issued by a CA. Since the web site owner generates their own certificate, it does not hold the same weight as a fully authenticated and verified SSL Certificate issued by a CA. 2. A Domain Validated Certificate is considered an entry- level SSL Certificate and can be issued quickly. The only verification check performed is to ensure that the applicant owns the domain (web site address) where they plan to use the certificate. No additional checks are done to ensure that the owner of the domain is a valid business entity. 3. A fully authenticated SSL Certificate is the first step to true online security and confidence building. Taking slightly longer to issue, these certificates are only granted once the organization passes a number of validation procedures and checks to confirm the existence of the business, the ownership of the domain, and the user s authority to apply for the certificate. 4. Even though an SSL Certificate is capable of supporting 128- bit or 256- bit encryption, certain older browsers and operating systems still cannot connect at this level of security. SSL Certificates with a technology called Server- Gated Cryptography (SGC) enable 128- or 256- bit encryption to over 99.9% of web site visitors. Without an SGC certificate on the web server, browsers and operating systems that do not support 128- bit strong encryption will receive only 40- or 56- bit encryption. Users with certain older browsers and operating systems will temporarily step- up to 128- bit SSL encryption if they visit a web site with an 5. A domain name is often used with a number of different host suffixes. For this reason, you may employ a Wildcard Certificate that allows you to provide full SSL security to any host of your domain for example: host.yourdomain.com (where host varies but the domain name stays constant).

7 6. Similar to a Wildcard Certificate, but a little more versatile, the SAN (Subject Alternative Name) SSL Certificate allows for more than one domain to be added to a single SSL Certificate. 7. Code Signing Certificates are specifically designed to ensure that the software you have downloaded was not tampered with while en route. There are many cyber criminals who tamper with software available on the Internet. They may attach a virus or other malicious software to an innocent package as it is being downloaded. These certificates make sure that this doesn t happen. 8. Extended Validation (EV) SSL Certificates offer the highest industry standard for authentication and provide the best level of customer trust available. When consumers visit a web site secured with an EV SSL Certificate, the address bar turns green (in high- security browsers) and a special field appears with the name of the legitimate web site owner along with the name of the security provider that issued the EV SSL Certificate. It also displays the name of the certificate holder and issuing CA in the address bar. This visual reassurance has helped increase consumer confidence in e- commerce. TECH TALK MADE SIMPLE Encryption: Information is jumbled up so that it cannot be used by anyone other than the person for whom it is intended. Decryption: Un- jumble information and put it back in its original format. Key: A mathematical formula, or algorithm that is used to encrypt or decrypt your information. In the same way that a lock with many different combinations is more difficult to open, the longer the length of the encryption key (measured in number of bits), the stronger the encryption. Browser: A software program that you use to access the Internet. Examples include: Microsoft Internet Explorer (IE); Mozilla Firefox, Apple Safari, Flock, and Google Chrome. CONCLUSION Trust makes all the difference in the world of online business. Investment in technology to protect customers and earn their trust is a critical success factor for any e- commerce web site. The effective implementation of SSL Certificates and correct placement and use of trust marks are proven tools in the establishment of consumer trust. One of a Kind Solutions is here to help you grow your business. By using SSL, you will show your customers that you value their data and keeping that data private. Let us help you, get in touch and secure your website today.

Whether you are an individual or a company, you should approach online security in the same way that you would approach physical security for your home or business. Not only does it make you feel safer

BEGINNERS GUIDE TO SSL CERTIFICATES: MAKING THE BEST CHOICE WHEN CONSIDERING YOUR ONLINE SECURITY OPTIONS BEGINNERS GUIDE TO SSL CERTIFICATES INTRODUCTION Whether you are an individual or a company, you

BEGINNERS GUIDE TO SSL CERTIFICATES: Making the BEST choice when considering your online security options BEGINNERS GUIDE TO SSL CERTIFICATES Introduction Whether you are an individual or a company, you

Securing your Online Data Transfer with SSL A GUIDE TO UNDERSTANDING SSL CERTIFICATES, how they operate and their application 1. Overview 2. What is SSL? 3. How to tell if a Website is Secure 4. What does

understanding SSL certificates THAWTE IS A LEADING GLOBAL PROVIDER OF SSL CERTIFICATES contents UNDERSTANDING SSL CERTIFICATES...1 What Is SSL and What Are SSL Certificates?...1 Features of SSL...1 Encryption...1

SSL You re FREE Guide to (Secure Sockets Layer) What is a Digital Certificate? SSL Certificates, also known as public key certificates or Digital Certificates, are essential to secure Internet browsing.

Security is of the utmost importance when doing business on the Web. Your customers want to know that their information is protected when crossing data lines. A Thawte SSL Web Server Certificate or SuperCert

WHY YOU NEED AN SSL CERTIFICATE Introduction People are getting smart about online security. More and more of them are looking for the padlock icon, the https prefix and a green address bar in their browser

Web Presence Security Web Presence Security 2 Getting your business online is about reaching out and connecting with millions of potential customers, buyers, and partners. Building a website is the most

Introduction Widespread usage of internet has led to the growth of awareness amongst users, who now associate green address bar with security. Though people are able to recognize the green bar, there is

WHITE PAPER: SECURITY AND TRUST: THE BACKBONE OF DOING BUSINESS OVER THE INTERNET White Paper Security and Trust: The Backbone of Doing Business Over the Internet Security and Trust: The Backbone of Doing

A Fundamental Requirement for Internet Transactions May 2007 Copyright 2007 Entrust. All rights reserved. Entrust is a registered trademark of Entrust, Inc. in the United States and certain other countries.

SSL Secure Socket Layer To protect your data from unauthorized view, it is encrypted before it gets cleared for transfer. To this means, we employ Netscape s Secure Socket Layer Protocol 3.0 (SSL) with

Protecting Your Name on the Internet The Business Benefits of Extended Validation SSL Certificates 2008 Copyright Godaddy. All rights Reserved Page 1 Contents 1. Where We Are Now...3 2. How SSL Certificates

Go Daddy Technical Brief ecommerce Security WHY YOU NEED AN SSL CERTIFICATE In the world of electronic commerce, security is paramount. Although Web sales are on the rise, widespread fears about sending

What this means for you Why are we changing Security Partners? Just four simple reason: 1. Advances in security technology 2. Cost of providing those advances to you 3. More options and services to choose

Introduction To secure transmission of information from browser to a web server, a security protocol is used. SSL (Secure Socket Lock) is one of the most popular and widely accepted security protocols,

Be the Trusted Security Provider Our Customers Need The demand for online security products is greater than ever due in part to the prevalence of cybercrime in the news headlines. Given the nature of their

Why You Need an SSL Certificate WHY YOU NEED AN SSL CERTIFICATE Introduction Recent numbers from the U.S. Department of Commerce show that online retail is continuing its rapid growth. However, malicious

Introduction R ECENT NUMBERS FROM THE U.S. DEPARTMENT OF COMMERCE SHOW THAT ONLINE RETAIL IS CONTINUING ITS RAPID GROWTH. HOWEVER, FEAR OF INADEQUATE ONLINE SECURITY IS CAUSING ONLINE RETAIL- ERS TO LOSE

GO DADDY TECHNICAL BRIEF ecommerce SECURITY WHY YOU NEED AN SSL CERTIFICATE In the world of electronic commerce, security is paramount. Although Web sales are on the rise, widespread fears about sending

System i Security Digital Certificate Manager Version 5 Release 4 System i Security Digital Certificate Manager Version 5 Release 4 Note Before using this information and the product it supports, be sure

Installation and usage of SSL certificates: Your guide to getting it right So, you ve bought your SSL Certificate(s). Buying your certificate is only the first of many steps involved in securing your website.

IBM i Security Digital Certificate Manager 7.1 IBM i Security Digital Certificate Manager 7.1 Note Before using this information and the product it supports, be sure to read the information in Notices,

How Extended Validation SSL can help to increase online transactions and improve customer confidence White Paper 2 April, 2009 Phishing scams and online fraud have created an environment of fear and doubt

How to check if I care for the safety of my Clients? www.certum.eu Have you considered ways to increase the reliability of your business on the Internet and stand out from the crowd? 72% 91% of Internet

GeoTrust Extended Validation SSL and Customer Confidence Introduction Suspicion, doubt, reluctance, abandonment, and in some cases refusal to shop online at all anymore are growing characteristics among

General tips for increasing the security of using First Investment Bank's internet banking Dear Clients, First Investment Bank (Fibank, the Bank) provides you with high level of protection and security

The MySBU portal is built using Microsoft s SharePoint technology framework, therefore, for the best viewing experience, Southwest Baptist University recommends the use of Microsoft s Internet Explorer,

2014 LBSEC http://www.liveboxcloud.com LiveBox Srl does not release declarations or guarantee regarding this documentation and its use and declines any expressed or implied commercial or suitability guarantee

WHITE PAPER: The Impact of Extended Validation (EV) Certificates on Customer Confidence YOUR SUCCESS IS BUILT ON TRUST 1 THE IMPACT OF EXTENDED VALIDATION (EV) CERTIFICATES ON CUSTOMER CONFIDENCE As ecommerce

How to Install SSL Certificates on Microsoft Servers Introduction to Realtime Publishers by Don Jones, Series Editor For several years now, Realtime has produced dozens and dozens of high quality books

extended validation SSL certificates: a standard for trust THAWTE IS A LEADING GLOBAL PROVIDER OF SSL CERTIFICATES EXTENDED VALIDATION SSL CERTIFICATES: A STANDARD FOR TRUST...1 Who Do You Trust?...1 The

MSGCU SECURE MESSAGE CENTER Welcome to the MSGCU Secure Message Center. Email is convenient, but is it secure? Before reaching the intended recipient, email travels across a variety of public servers and

White paper How to choose a Certificate Authority for safer web security Executive summary Trust is the cornerstone of the web. Without it, no website or online service can succeed in the competitive online

The Benefits of the thawte ISP Program Earn additional revenue by reselling thawte digital certificate products... 1. Overview 2. Who Should Join? 3. The ISP Program what are the Benefits? 4. How can you

Ref: U.S. Department of Commerce IT Security Program Policy and Minimum Implementation Standards, revised 30 June 2005. On the Web: http://ocio.os.doc.gov/itpolicyandprograms/policy Standards/DEV01_003884#P2653

The Benefits of SSL Content Inspection ABSTRACT SSL encryption is the de-facto encryption technology for delivering secure Web browsing and the benefits it provides is driving the levels of SSL traffic

Wavecrest InstallationGuide Wavecrest Certificate www.wavecrest.net Copyright Copyright 1996-2015, Wavecrest Computing, Inc. All rights reserved. Use of this product and this manual is subject to license.

EASY GUIDE TO THE VERISIGN ENROLLMENT PROCESS IT'S QUICK AND EASY THE VERISIGN ENROLLMENT PROCESS IS QUICK AND EASY WHEN YOU ARE AWARE OF WHAT INFORMATION WILL BE REQUIRED. This guide is designed to prepare

Deutsche Bank Secure method of use of the e-banking system Introduction Deutsche Bank pays particular attention to your security. Therefore, the funds entrusted to us by our Customers are protected, using

Extended Validation (EV) SSL Certificates EV SSL certificates are a new industry standard for identity assurance and authentication A green trust indicator in the web browser illustrates that this website

present the complete guide to ssl and seo The Complete Guide to Setting up SSL and SEO Google recently announced that HTTPS is now being used as a ranking signal in its search engine algorithm. Websites

P a g e 1 Internet Basics ABOUT THIS CLASS This class is designed to provide a basic introduction to accessing and navigating the internet (a.k.a. the world wide web or the web ). Throughout the class,

Reading an email sent with Voltage SecureMail Using the Voltage SecureMail Zero Download Messenger (ZDM) SecureMail is an email protection service developed by Voltage Security, Inc. that provides email